$ rpki-client -vvf rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft File: twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft (raw, json) Hash identifier: oTVWshXny3i3zYo1iUYlfLcZqk6vU3A00tzLhVs4RH0= Subject key identifier: 4B:9A:51:D4:C2:EF:56:13:83:EB:6D:FD:8B:4B:0D:6F:0A:1E:6C:54 Authority key identifier: B7:03:18:D7:1A:A0:E8:04:32:4E:01:3C:30:97:FD:BC:D6:01:34:D4 Certificate issuer: /CN=A917576D/serialNumber=B70318D71AA0E804324E013C3097FDBCD60134D4 Certificate serial: 0A4F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/twMY1xqg6AQyTgE8MJf9vNYBNNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft Manifest number: 0A25 Signing time: Tue 04 Nov 2025 19:53:41 +0000 Manifest this update: Tue 04 Nov 2025 19:53:41 +0000 Manifest next update: Tue 11 Nov 2025 19:53:41 +0000 Files and hashes: 1: twMY1xqg6AQyTgE8MJf9vNYBNNQ.crl (hash: 97uMHbMnDoTNYH7k684IOBgIwXRzqzHQ7ACYxeWh1/Y=) 2: C9E62876DD0A11EA97BF0347C4F9AE02.roa (hash: 0mOETl/OdBfCNtX5dYvxJWUGYIrmCCO9qdnaVBCdeGw=) 3: 4D3CA5D082D211EAB2F4F66AC4F9AE02.roa (hash: lfBwwOjjkJPzorGSrjFmgyYNK8ta/zHBe8Kj7Bzu0ac=) 4: 7DE09496DDD911EA90D9B84CC4F9AE02.roa (hash: /SND4cbujhT7TqEgt/0aWxeQoWtrbzsjgSVcPJIkIEo=) 5: F8C86248AAF711EAB266AB46C4F9AE02.roa (hash: 6v3m90vLYNtp4AY7tUO3B6KEXg7uMMxAcXi3ddcOJ74=) 6: EA7554AC82D011EA8BCCCA64C4F9AE02.roa (hash: Y4DJ8WF2RUGHabm+AWJoTCeaPDdvIhxKo59oQbeVOD8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.crl rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/twMY1xqg6AQyTgE8MJf9vNYBNNQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:53:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2639 (0xa4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917576D, serialNumber=B70318D71AA0E804324E013C3097FDBCD60134D4 Validity Not Before: Nov 4 19:53:41 2025 GMT Not After : Nov 11 19:53:41 2025 GMT Subject: CN=690a59c5-9c66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:0b:0a:6a:ac:ab:3d:c5:fd:d6:16:9d:3b:c8: c8:fc:42:8c:8a:e3:ea:4e:d8:c9:c8:85:46:ee:27: 50:3f:7b:db:e3:ac:63:6d:9b:5c:18:43:6d:5d:00: 16:e9:bb:7d:0c:fd:d5:df:ff:a2:6f:79:dd:f6:f9: 94:b0:a6:be:9c:36:51:ec:b6:c0:7a:33:99:34:44: d8:f4:0a:89:ab:16:b0:5a:86:2b:77:2d:92:0d:e8: d0:62:f2:b8:97:85:60:ef:3e:24:14:aa:4a:ee:f0: 11:d6:b6:ac:90:c4:27:77:6a:c2:82:0d:91:59:5d: 1d:cd:49:75:af:93:d8:95:34:67:0d:ab:4f:00:d0: a8:17:d9:ba:b1:3d:88:f8:9c:f3:5e:48:0d:7b:9b: 14:8d:cc:eb:85:75:aa:95:40:04:b0:38:90:7a:3c: ba:6c:d3:b7:c7:34:32:3d:d3:82:da:06:fa:5e:ee: 9d:68:da:fa:e6:32:e7:21:82:c6:4c:44:71:98:52: 37:d7:88:a0:91:93:68:84:75:6d:85:7e:04:7e:1f: 45:06:2a:e7:62:fb:54:87:40:bd:99:7e:ac:b3:50: 2e:22:9a:04:dd:fc:7a:57:45:44:bd:28:bd:24:6d: a5:8b:ad:d0:ce:48:fb:9f:16:1b:b9:cd:d8:a0:d7: 2b:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:9A:51:D4:C2:EF:56:13:83:EB:6D:FD:8B:4B:0D:6F:0A:1E:6C:54 X509v3 Authority Key Identifier: keyid:B7:03:18:D7:1A:A0:E8:04:32:4E:01:3C:30:97:FD:BC:D6:01:34:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/twMY1xqg6AQyTgE8MJf9vNYBNNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917576D/2E767E3282CD11EA895C7B5CC4F9AE02/twMY1xqg6AQyTgE8MJf9vNYBNNQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:be:19:68:87:90:8a:ea:a3:c9:2f:86:b5:d8:6c:f0:14:a4: 46:1d:9f:03:f3:a6:33:b1:43:05:13:0c:b2:f3:5c:ee:a3:e8: 50:d6:fd:c4:1f:c5:69:f3:46:ef:fa:0f:67:4e:c0:6a:4a:5b: 03:4f:71:f3:95:86:2c:ae:f2:67:76:cc:7e:f9:27:fd:e2:1a: 0b:25:3f:08:09:0b:ff:e9:53:55:26:d5:25:d5:db:4b:b3:c3: 36:f4:88:25:42:f1:02:97:a6:3e:7f:9e:cb:31:e3:98:f4:8d: fe:b8:73:fd:6f:75:08:8d:00:fe:05:73:ed:0c:b6:33:4a:32: fe:27:7c:9e:f5:3d:03:ac:1e:a9:c3:18:27:e7:6a:7b:61:90: c5:25:9f:47:90:4c:f2:2d:57:00:ae:26:e0:83:2b:3d:50:97: 3e:31:9a:e0:13:7f:67:3d:d6:50:e8:07:25:97:e5:eb:1d:17: 2d:9d:d8:4b:6c:a1:7f:38:59:52:0f:e7:1b:0c:86:15:f3:e7: f2:bb:d3:8d:a1:ea:fa:88:f4:90:23:ac:26:bf:4c:14:52:ce: b3:6e:39:44:82:f5:15:e1:a7:e1:6f:6b:47:23:5b:35:56:c8: 20:4e:77:db:d8:94:33:5a:8d:8e:6b:f2:5f:24:76:62:28:8c: de:2d:31:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCk8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU3NkQxMTAvBgNVBAUTKEI3MDMxOEQ3MUFBMEU4MDQzMjRFMDEzQzMwOTdGREJD RDYwMTM0RDQwHhcNMjUxMTA0MTk1MzQxWhcNMjUxMTExMTk1MzQxWjAYMRYwFAYD VQQDEw02OTBhNTljNS05YzY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxwsKaqyrPcX91hadO8jI/EKMiuPqTtjJyIVG7idQP3vb46xjbZtcGENtXQAW 6bt9DP3V3/+ib3nd9vmUsKa+nDZR7LbAejOZNETY9AqJqxawWoYrdy2SDejQYvK4 l4Vg7z4kFKpK7vAR1raskMQnd2rCgg2RWV0dzUl1r5PYlTRnDatPANCoF9m6sT2I +JzzXkgNe5sUjczrhXWqlUAEsDiQejy6bNO3xzQyPdOC2gb6Xu6daNr65jLnIYLG TERxmFI314igkZNohHVthX4Efh9FBirnYvtUh0C9mX6ss1AuIpoE3fx6V0VEvSi9 JG2li63Qzkj7nxYbuc3YoNcr4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEuaUdTC 71YTg+tt/YtLDW8KHmxUMB8GA1UdIwQYMBaAFLcDGNcaoOgEMk4BPDCX/bzWATTU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTc2RC8yRTc2N0UzMjgy Q0QxMUVBODk1QzdCNUNDNEY5QUUwMi90d01ZMXhxZzZBUXlUZ0U4TUpmOXZOWUJO TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3R3TVkxeHFnNkFReVRnRThNSmY5dk5ZQk5OUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTc2RC8yRTc2N0UzMjgyQ0QxMUVBODk1QzdCNUNDNEY5QUUwMi90d01ZMXhxZzZB UXlUZ0U4TUpmOXZOWUJOTlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbvhloh5CK6qPJL4a12GzwFKRGHZ8D86YzsUMFEwyy81zuo+hQ1v3E H8Vp80bv+g9nTsBqSlsDT3HzlYYsrvJndsx++Sf94hoLJT8ICQv/6VNVJtUl1dtL s8M29IglQvECl6Y+f57LMeOY9I3+uHP9b3UIjQD+BXPtDLYzSjL+J3ye9T0DrB6p wxgn52p7YZDFJZ9HkEzyLVcAribggys9UJc+MZrgE39nPdZQ6Acll+XrHRctndhL bKF/OFlSD+cbDIYV8+fyu9ONoer6iPSQI6wmv0wUUs6zbjlEgvUV4afhb2tHI1s1 VsggTnfb2JQzWo2Oa/JfJHZiKIzeLTEZ -----END CERTIFICATE-----Generated at Wed Nov 5 05:14:38 2025 by rpki-client